Warning: Undefined array key "Description" in /var/www/www.linuxsecurity.com-443/html/lsadvisories/lsadvisories.php on line 220
Fedora 40: FEDORA-2024-d32fd0e2d1 critical: python-nbdime nanoid fix
fedora
December 19, 2024
This update fixes CVE-2024-55565 by updating the vendored JavaScript to include a version of nanoid without the security issue.
Summary
Nbdime provides tools for diffing and merging of Jupyter notebooks.
- nbdiff: compare notebooks in a terminal-friendly way
- nbmerge: three-way merge of notebooks with automatic conflict resolution
- nbdiff-web: shows you a rich rendered diff of notebooks
- nbmerge-web: gives you a web-based three-way merge tool for notebooks
- nbshow: present a single notebook in a terminal-friendly way
Update Information:
This update fixes CVE-2024-55565 by updating the vendored JavaScript to include a version of nanoid without the security issue.
Topics Covered
Change Log
* Mon Dec 9 2024 Jerry James
References
[ 1 ] Bug #2331102 - CVE-2024-55565 python-nbdime: nanoid mishandles non-integer values [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2331102
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-d32fd0e2d1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: python-nbdime
Product: Fedora 40
Version: 4.0.2
Release: 2.fc40
Summary: Diff and merge of Jupyter notebooks
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!